|
An Optimized Firewall Anomaly Resolution Fulvio
Valenza1+ and Manuel
Cheminod2 1Politecnico di Torino, DAUIN, corso duca degli
Abruzzi 24, Turin, Italy 2CNR-IEIIT,
corso duca degli Abruzzi 24, Turin, Italy manuel.cheminod@ieiit.cnr.it Abstract Firewalls are the key mechanism in cybersecurity,
that has been widely used to ensure network security. In literature, several
works have been proposed in the area of firewall rules managing, however, the
correct firewall configuration still remains a complex and error-prone task.
Anomalies among firewall rules can cause severe network breaches, such as
allowing harmful packets to slip into a subnetwork or dropping legitimate
traffic which in turn could hinder the correct availability of web services.
This paper aims to help the network security administrators by introducing a
formal approach that reduces the number of anomalies in firewalls'
configurations that the administrators are usually obligated to manually
solve. Keywords: Firewall, Policy Based Systems, Policy
Anomaly Management, Network Security +: Corresponding
author: Fulvio Valenza Politecnico
di Torino, Dip. di Automatica e Informatica,
Corso Duca degli Abruzzi,
24, 10129 Torino, Journal
of Internet Services and Information Security
(JISIS), 10(1): 22-37,
February 2020 DOI: 10.22667/JISIS.2020.02.29.022 [pdf] |